RSS   Vulnerabilities for 'Bitrix24'   RSS

2020-06-01
 
CVE-2020-13758

CWE-79
 

 
modules/security/classes/general.post_filter.php/post_filter.php in the Web Application Firewall in Bitrix24 through 20.0.950 allows XSS by placing %00 before the payload.

 

 >>> Vendor: Bitrix 5 Products
Bitrix site manager
Bitrix e-store module
Xscan
Mpbuilder
Bitrix24


Copyright 2024, cxsecurity.com

 

Back to Top